EN
DE
Fabian Baroud
EN
DE
Legal

Privacy Policy

1. Data Controller

Controller within the meaning of the General Data Protection Regulation (GDPR) is:
Fabian Kämpfe
Hagener Str. 378
44229 Dortmund
Germany
Phone: +49 157 89639752
Email: info@fabianbaroud.com

No data protection officer has been appointed, as there is no legal obligation to do so.

2. General information on data processing

We take the protection of your personal data very seriously. In this privacy policy, we inform you about which personal data we process when you use this website, for what purposes this is done, and which rights you are entitled to.

Personal data is any data that can be used to identify you personally. We only process personal data to the extent necessary to provide a functional website and our content and services, where we are legally obliged to do so, or where you have consented to the processing.

The legal bases include in particular:

Article 6(1)(a) GDPR (consent)

Article 6(1)(b) GDPR (contract / pre-contractual measures)

Article 6(1)(c) GDPR (legal obligation)

Article 6(1)(f) GDPR (legitimate interests)

3. Hosting, website provision and server log files

This website is hosted by IONOS. When you access our website, the hosting provider processes technically necessary data on our behalf in so-called server log files. This may include, in particular: IP address, date and time of the request, pages/files accessed, referrer URL, browser type/version, operating system, status codes, and the amount of data transferred.

Purpose: Delivery of the website, ensuring security and stability, error analysis, and defense against attacks.
Legal basis: Article 6(1)(f) GDPR (legitimate interests).
Retention period: The server log files are stored for a limited period (up to a maximum of 8 weeks) and then deleted, unless further retention is required in individual cases (e.g., for the purpose of preserving evidence).
Where required, a data processing agreement pursuant to Article 28 GDPR has been concluded with the hosting provider.

4. SSL/TLS encryption

For security reasons and to protect the transmission of confidential content, this website uses SSL/TLS encryption. This prevents data you transmit to us from being easily read by third parties.

5. Technically necessary cookies

We only use cookies on our website that are necessary for operating the website and providing essential functions. No consent is required for these cookies.

The legal basis for storing/accessing technically necessary cookies is Section 25(2) No. 2 TDDDG. To the extent that personal data is processed in connection with these cookies, this is done on the basis of Article 6(1)(f) GDPR (legitimate interest in the technically error-free provision and optimization of our website).

Cookie used:
Name: wp-wpml_current_language
Purpose: Stores the language you selected so the website can be displayed in that language.
Retention period: Session (deleted when you close your browser).
Provider: First-party (set by this website / WPML).

6. Contact (contact form, email, phone)

If you contact us via the contact form, email, or by phone, we process the data you provide (e.g., name, email address, phone number, message, and any other information you choose to share).

Purpose: Processing your inquiry and subsequent communication.
Legal bases: Article 6(1)(b) GDPR (pre-contractual/contractual communication) or Article 6(1)(f) GDPR (other inquiries).
Retention period: Inquiries that do not result in a contract are generally deleted after 6 months, unless statutory retention obligations apply or the inquiry develops into a contractual relationship.

7. Locally hosted fonts

We use fonts (Google Fonts) that are hosted locally on our server. No connection to Google’s servers is established.

Purpose: Consistent presentation and performance of the website.
Legal basis: Article 6(1)(f) GDPR.

8. Tracking, analytics and advertising

We do not use any services for this.

9. Processing of customer and contract data

If you are (or become) a customer, we process personal data for the initiation of the contract, contract performance, service provision, billing, and customer communication (e.g., contact details, contract and service data, correspondence, and, where applicable, payment/billing data).

Legal bases: Article 6(1)(b) GDPR (contract/pre-contractual measures), where applicable Article 6(1)(c) GDPR (legal obligations), and where applicable Article 6(1)(f) GDPR (organization/administration).

Retention / storage: We delete contract and business records as soon as they are no longer required for the purposes and no statutory retention obligations apply. Retention obligations under tax and commercial law may be 6, 8, or 10 years depending on the document (e.g., 10 years for certain tax-relevant records; 6 years for business correspondence).

10. Communication and organisation outside the website

We do use the following services, but exclusively outside of this website. These services are not integrated into the website and are not automatically loaded when you visit our website.

10.1 Communication via WhatsApp

If you communicate with us via WhatsApp, we process the content you transmit (e.g., messages, attachments) as well as communication data (e.g., phone number, profile name, time of communication).

Purpose: Customer communication and handling inquiries.
Legal bases: Article 6(1)(b) GDPR (contract/pre-contractual) and/or Article 6(1)(f) GDPR (efficient communication).
Alternative: If you prefer not to use this channel, you can contact us at any time by email or phone.

10.2 Appointment scheduling via Calendly

For scheduling appointments, we use Calendly outside of this website. In particular, your name, contact details, and appointment/organizational data are processed.

Purpose: Scheduling and organizing appointments.
Legal bases: Article 6(1)(b) GDPR (contract/pre-contractual) and/or Article 6(1)(f) GDPR (efficient organization).
Alternative: You can also schedule an appointment at any time by email or phone.

10.3 Online meetings via Microsoft Teams

For online meetings, we use Microsoft Teams outside of this website. Depending on how it is used, participant data (e.g., name, email), meeting metadata, and—if enabled by you—audio/video data may be processed.

Purpose: Conducting online meetings and customer communication.
Legal bases: Article 6(1)(b) GDPR (contract/pre-contractual) and/or Article 6(1)(f) GDPR (efficient communication).
Alternative: Communication is also possible by phone or email.

11. Recipients, service providers and data processing on behalf (commissioned processing)

We use service providers who process personal data on our behalf (e.g., hosting, consent management, analytics and marketing services). Where required, we conclude data processing agreements with these service providers in accordance with Article 28 GDPR.

12. Data transfer to third countries

If we use services where a transfer of personal data to third countries (e.g., the USA) cannot be ruled out, such transfers only take place in compliance with the legal requirements (e.g., an adequacy decision or appropriate safeguards such as Standard Contractual Clauses) and—where required—on the basis of your consent.

13. Your rights

You have the right at any time to:

Access (Article 15 GDPR)

Rectification (Article 16 GDPR)

Erasure (Article 17 GDPR)

Restriction of processing (Article 18 GDPR)

Data portability (Article 20 GDPR)

Object to processing based on Article 6(1)(f) GDPR (Article 21 GDPR)

Withdraw your consent at any time (Article 7(3) GDPR), with effect for the future.

To exercise your rights, it is sufficient to send an email to info@fabianbaroud.com

14. Right to lodge a complaint with the supervisory authority

You have the right to lodge a complaint with a data protection supervisory authority, in particular with the authority in your place of habitual residence, your place of work, or the place of the alleged infringement.

State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia (LDI NRW)
Kavalleriestr. 2–4, 40213 Düsseldorf, Germany
P.O. Box 20 04 44, 40102 Düsseldorf, Germany
Phone: +49 (0)211 38424-0
Email: poststelle@ldi.nrw.de

15. Data security

We implement appropriate technical and organizational measures to protect your data against loss, destruction, unauthorized access, or unauthorized disclosure.

16. Up-to-dateness and changes

This privacy policy is currently valid (as of: 19 February 2026) and may be updated if our website, the services we use, or legal requirements change.